Check: NET0730
Network - IPSec VPN:
NET0730
(in versions v1 r16 through v1 r11)
Title
Network devices must have the Finger service disabled. (Cat III impact)
Discussion
The Finger service supports the UNIX Finger protocol, which is used for querying a host about the users that are logged on. This service is not necessary for generic users. If an attacker were to find out who is using the network, they may use social engineering practices to try to elicit classified DoD information.
Check Content
Review the device configuration to determine if Finger has been implemented. If the Finger service is enabled, this is a finding.
Fix Text
Configure the device to disable the Finger service.
Additional Identifiers
Rule ID: SV-3079r3_rule
Vulnerability ID: V-3079
Group Title:
Expert Comments
Expert comments are only available to logged-in users.
CCIs
CCIs tied to check.
| Number | Definition |
|---|---|
| No CCIs are assigned to this check |
Controls
Controls tied to check. These are derived from the CCIs shown above.
| Number | Title |
|---|---|
| No controls are assigned to this check |